← Back

CVE-2024-23715

nvd nist
Published: Nov 13, 2024Modified: Nov 20, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

In PMRWritePMPageList of pmr.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected (1)

Products: Google: Android
Google
1 product
Android
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Android
All versions

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (1)

Source: security@android.com
Vendor Advisory

Timeline

No history available yet.